search

RiotGames / cloud-inquisitor

Enforce ownership and data security within AWS
https://cloud-inquisitor.readthedocs.io/
Apache License 2.0
447 stars 37 forks source link

Improve Documentation how to add account #238

Open Ph4rell opened 5 years ago

Ph4rell commented 5 years ago

Summary

Hi, i just finished the installation of cinq, i would like to test with an AWS account, but got an error "Contacts cannot be empty" Summary.

Maybe describe a bit more the Accounts section, with example, and what is expected/required ? I fullfill all the required field, and got this error. What does mean the field Contacts ? and Required Groups ? Does Cinq only need AWS account ? or do i need to configure a user/role with specific policy ?

Thank you Regards Pierre

TheM0ng00se commented 5 years ago

Hi Ph4rell,

We can definitely improve the documentation.

'Contacts cannot be empty' means you need to specify at least one email address associated with the AWS account. Required Roles is related to the IAM GH Auditor which enforces custom groups attached to a role : https://github.com/RiotGames/cinq-auditor-iam/blob/master/README.rst Also after you add the account you need to restart supervisor for it to pick up the new accounts.

I agree the documentation isn't super clear here. We'll leave this open to address.

Ph4rell commented 5 years ago

Hi @TheM0ng00se,

Thank you for your quick answer, i still don't get it ! sorry :) I specified my AWS Account, and one email address but still have the same error message. Is there a command to restart the supervisor ?

TheM0ng00se commented 5 years ago

supervisorctl restart all

should do it.

On Mar 6, 2019, at 6:55 AM, Ph4rell notifications@github.com wrote:

Hi @TheM0ng00se,

Thank you for your quick answer, i still don't get it ! sorry :) I specified my AWS Account, and one email address but still have the same error message. Is there a command to restart the supervisor ?

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub, or mute the thread.

Ph4rell commented 5 years ago

Hi @TheM0ng00se,

I still got the same problem to add an account, would it be possible to schedule a google meetup to help me to finish the setup with you ?

When i will understand the way it works and got a running server, i'll update the docs !

regards; Pierre

likexian commented 4 years ago

Hello @Ph4rell

After you enter an email address in the Contacts input box, you need to hit your Enter on the keyboard, and then you shall see a dialog to select the notification method. In this way, one Contacts will add.

It is really an experience matters.

GIF